Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/6f63f2-b412-4e55-8b2f-bf37d96e5b77/1/yap0XYXAUTRwqxH0SnIRUQ_85mw.roa
File: yap0XYXAUTRwqxH0SnIRUQ_85mw.roa (raw, json)
Hash identifier: AugP9iwpbrnojDl5RLj2RdtMMdeb9BG3u38iHEImFkE=
Subject key identifier: C9:AA:74:5D:85:C0:51:34:70:AB:11:F4:4A:72:11:51:0F:FC:E6:6C
Certificate issuer: /CN=640e2db8c5e0fd2c726b0ab4780d97811843ad70
Certificate serial: 024891
Authority key identifier: 64:0E:2D:B8:C5:E0:FD:2C:72:6B:0A:B4:78:0D:97:81:18:43:AD:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZA4tuMXg_Sxyawq0eA2XgRhDrXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/6f63f2-b412-4e55-8b2f-bf37d96e5b77/1/yap0XYXAUTRwqxH0SnIRUQ_85mw.roa
Signing time: Sat 22 Jan 2022 10:30:12 +0000
ROA not before: Sat 22 Jan 2022 10:30:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 194.145.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149649 (0x24891)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640e2db8c5e0fd2c726b0ab4780d97811843ad70
Validity
Not Before: Jan 22 10:30:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9aa745d85c0513470ab11f44a7211510ffce66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:91:91:1b:50:25:ca:49:f0:f6:d9:d1:2d:9b:
d0:2f:33:e9:69:35:6e:a8:bb:af:69:25:73:95:85:
99:0d:00:16:a6:a4:e0:e7:89:94:69:b8:38:3d:8b:
ad:39:3f:df:ca:56:64:e5:99:c6:f0:a8:79:53:4e:
69:e3:c8:8c:f9:9c:c3:f1:7a:00:94:1a:5d:7f:5d:
02:2c:8a:cd:e5:c6:8d:04:7c:e1:23:b9:18:63:81:
c8:51:b4:ee:3b:92:c9:a7:d2:2b:e9:a8:df:43:ec:
67:20:ef:ca:36:22:a1:30:73:60:9d:8f:14:6a:f3:
fd:db:ce:e9:32:75:c3:1e:65:24:67:00:54:84:24:
d2:21:ac:98:e0:df:02:ea:7a:14:45:c3:b9:0b:76:
96:61:b3:0c:65:fc:c0:8d:a4:14:10:fc:99:c1:70:
d6:7d:f9:36:b1:ce:9c:30:8a:f3:5d:89:90:13:d9:
44:3f:8d:e9:0d:98:87:34:be:26:b9:0b:a7:43:da:
f5:13:77:c8:43:14:61:b3:4a:bf:fe:eb:24:b5:63:
ce:8d:05:70:b3:fe:57:04:e9:00:98:58:31:d0:c7:
80:13:50:5d:c1:7b:1e:14:10:2d:28:df:9d:a8:22:
7c:4b:06:9c:5a:8f:28:91:3a:cf:1f:64:0c:03:16:
69:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AA:74:5D:85:C0:51:34:70:AB:11:F4:4A:72:11:51:0F:FC:E6:6C
X509v3 Authority Key Identifier:
keyid:64:0E:2D:B8:C5:E0:FD:2C:72:6B:0A:B4:78:0D:97:81:18:43:AD:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZA4tuMXg_Sxyawq0eA2XgRhDrXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/6f63f2-b412-4e55-8b2f-bf37d96e5b77/1/yap0XYXAUTRwqxH0SnIRUQ_85mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/6f63f2-b412-4e55-8b2f-bf37d96e5b77/1/ZA4tuMXg_Sxyawq0eA2XgRhDrXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.237.0/24
Signature Algorithm: sha256WithRSAEncryption
90:2d:5b:3b:4c:bd:f1:25:2f:d7:ab:e1:94:f0:fb:dc:6f:8b:
cb:11:06:05:8a:32:29:1e:59:bd:10:b8:39:05:1b:0f:f4:c5:
4e:b1:80:2b:e3:3f:09:ee:3b:d6:12:c5:be:9a:af:ac:fc:9a:
32:90:4c:a6:57:4e:fa:d2:be:ca:5a:ac:3d:64:2d:e5:02:5e:
80:e0:dd:40:ab:e6:08:b3:a0:3d:97:d3:e9:ff:6d:c6:45:1d:
12:1c:cb:63:12:d6:04:1d:59:8b:d7:25:10:4f:51:32:5f:68:
4d:21:65:38:af:e4:38:ff:d5:50:1c:1c:71:ed:62:cb:05:cf:
e6:95:63:7d:f1:e8:d2:5e:7a:6d:4e:09:f4:ba:19:7b:74:3e:
a8:6c:87:06:9f:f4:42:25:25:e5:2f:f6:86:15:a2:0e:05:db:
8a:4a:7f:a0:7f:4a:07:15:98:7a:cf:44:99:7f:60:ac:9a:0b:
06:c6:77:f1:6b:da:ea:84:6f:27:66:b2:b0:5d:20:f3:4f:a0:
d5:2c:41:9a:c6:51:bf:ee:e9:a0:85:5d:5e:17:bc:6c:c0:56:
ae:28:aa:8c:39:bc:e1:3e:21:8f:ba:26:cf:be:5c:ab:6c:b5:
f3:55:77:f5:dc:b7:45:56:46:ec:44:9f:9f:44:33:b6:6d:f4:
e0:e0:30:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:47 2023 by rpki-client on console.sobornost.net